

United States Patent and Trademark Office 



UNITED STATES DEPARTMENT OF COMMERCE 
United States Patent and Trademark Office 
Addrws: COMMISSIONER FOR PATENTS 
P.O. Box 1450 

Alexandria, Virginia 22313-1450 



| ATTORNEY DOCKET NO. | CONFIRMATION NpT 



APPLICATION NO. 



FILING DATE 



FIRST NAMED INVENTOR 



10/757,560 



01/13/2004 



Patrik Gustafsson 



4955 7590 02/03/2006 

WARE FRESSOLA VAN DER SLUYS , 

ADOLPHSON, LLP 

BRADFORD GREEN BUILDING 5 

755 MAIN STREET, P O BOX 224 

MONROE, CT 06468 



944-004.042 



3025 



EXAMINER 



ART UNIT 



LEE, PHILIP C 

Z3 



PAPER NUMBER 



2154 

DATE MAILED: 02/03/2006 



Please find below and/or attached an Office communication concerning this application or proceeding. 



PTO-90C (Rev. 10/03) 



Office* Action Summan/ 


Application No. 

10/757,560 


Applicant(s) 

GUSTAFSSON, PATRIK 


Examiner 

Philip C. Lee 


Art Unit 

2154 





- The MAILING DATE of this communication appears on the cover sheet with the correspondence address 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH (S) OR THIRTY (30) DAYS, 
WHICHEVER IS LONGER, FROM THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)[>3 Responsive to communication(s) filed on 23 November 2005 . 
2a)(3 This action is FINAL. 2b)D This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1 935 CD. 1 1 , 453 O.G. 21 3. 

Disposition of Claims 

4) (3 Claim(s) 1-34 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) S Claim(s) 1-34 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) Q The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

11) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 119 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 119(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. Q Certified copies of the priority documents have been received in Application No. . 

3. Q Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 



Attachment! s) 

1) □ Notice of References Cited (PTO-892) 4) □ Interview Summary (PTO-413) 

2) □ Notice of Drafts person's Patent Drawing Review (PTO-948) Paper No(s)/Mail Date. . 

3) |3 Information Disclosure Statement(s) (PTO-1449 or PTO/SB/08) 5) □ Notice of Informal Patent Application (PTO-152) 

Paper No(s)/Mail Date 10/7/05 . 6) □ Other: . 

U.S. Patent and Trademark Office " ' " ~ ~~ " . — ~.™ „ 

PTOL-326 (Rev. 7-05) Office Action Summary Part of Paper No./Mail Date 200601 21 



Application/Control Number: 10/757,560 Page 2 

Art Unit: 2154 

1 . This action is responsive to the amendment and remarks filed on September 14, 2005. 

2. Claims 1-34 are presented for examination. 

3. The text of those sections of Title 35, U.S. code not included in this office action can be 
found in a prior office action. 



Claim Rejections - 35 USC 101 



35 U.S.C. 101 reads as follows: 

Whoever invents or discovers any new and useful process, machine, manufacture, or composition of matter, or 
any new and useful improvement thereof, may obtain a patent therefor, subject to the conditions and 
requirements of this title. 



4. Claim 33 is rejected under 35 U.S.C. 101 because the claimed invention is directed to 
non-statutory subject matter. Claim 33 must be a computer program stored in a computer- 
readable medium, wherein the computer-readable medium is not defined as a signal or 
transmittal wave, etc. in the specification, (i.e. the claimed invention cannot be a software 
program without being stored on a form of medium, e.g. disk). 
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Claim Rejections - 35 USC 112 



5. Claims 1-18 are rejected under 35 U.S.C. 1 12, second paragraph, as being indefinite for 
failing to particularly point out and distinctly claim the subject matter which applicant regards as 
the invention. 

a. Claim language in the following claims is not clearly understood: 

i. As per claim 1, lines 1 1-14, it is unclear how an access request signal can 
be forwarded by a terminal when the access request signal is already sent by the 
terminal in lines 7-10. 



Claim Rejections - 35 USC 103 



2. The following is a quotation of 35 U.S.C. 103(a) which forms the basis for all 
obviousness rejections set forth in this Office action: 

(a) A patent may not be obtained though the invention is not identically disclosed or described as set forth in 
section 102 of this title, if the differences between the subject matter sought to be patented and the prior art are 
such that the subject matter as a whole would have been obvious at the time the invention was made to a person 
having ordinary skill in the art to which said subject matter pertains. Patentability shall not be negatived by the 
manner in which the invention was made. 
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3. Claims 1-34 are rejected under 35 U.S.C. 103(a) as being unpatentable over Kalke, U.S. 
Patent Application Publication 2004/0137890 (hereinafter Kalke) in view of Martin, JR. et al, 
U.S. Patent Application Publication 2003/0023849 (hereinafter Martin, JR.). 

4. Kalke and Martin, JR. were cited in the last office action. 

5. As per claims 1 and 33, Kalke taught the invention substantially as claimed by which a 
terminal (10) (122, fig. 1), enabled for handling data-protocol services, is dynamically 
configured for the data-protocol services specific to a service provider (page 4, paragraph 60) so 
as to be able to connect said terminal (10) to an IP backbone network via a network (16) (page 4, 
paragraphs 70-71), which provides said data-protocol services and which is provided by said 
service provider (page 7, paragraph 1 14), comprising the steps of: 

sending (42, 42a) an access-request signal (30, 30a) (page 5, paragraph 84) to the 
network (16) by the terminal (10) for connecting to a help-portal server (24, 24a) of said network 
(16) (fig. 8, page 5, paragraphs 79 and 84) and for requesting a provisioning signal (38) or a 
management session signal (38a) for configuring the terminal (10) (page 4, paragraph 65); and 

forwarding (52, 52a) the access-request signal (30, 30a) to the help-portal server (24, 24a) 
by the terminal (10) using a well-known uniform resource locator (URL) (e.g. APN) and a 
trusted access point node (20, 20a) (e.g. GGSN that handle the specified APN) in order to 
provide the provisioning signal (38) or the management session signal (38a) to the terminal (10) 
(page 5, paragraphs 83-90; page 6, paragraph 106; page 9, paragraph 149). 
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6. Kalke did not specifically teach provisioning in a secure way based on a chain of trust. 
Martin, JR. taught a similar invention for provisioning in a trusted (i.e. "secure") environment 
based on a chain of trust (page 2, paragraphs 18-20). 

7. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke and Martin, JR. because Martin, JR.'s 
teaching of provisioning in a trusted environment would increase the security in Kalke 5 s system 
by providing the ability to control provisioning to mobile devices to prevent unauthorized 
provisioning (page 1, paragraph 3). 

8. As per claim 19, Kalke taught the invention substantially as claimed comprising: 

a terminal (10) (122, fig. 1), enabled for handling data-protocol services and dynamically 
configured for the data-protocol services specific to a service provider (page 4, paragraph 60), 
responsive to a provisioning signal (38) or to a management session signal (38a) for configuring 
the terminal (10) (page 4, paragraph 70), for providing an access-request signal (30, 30a) (page 
5, paragraph 84); and 

a network (16) provided by said service provider (page 7, paragraph 1 14), responsive to 
the access-request signal (30, 30a) (page 5, paragraph 84), for providing the data-protocol 
services specific to a service provider (page 4, paragraph 70), for forwarding the access-request 
signal (30, 30a) to a help-portal server (24, 24a) using a well-known uniform resource locator 
(URL) (e.g. APN) and a well-known access point node name (e.g. GGSN that handle the 
specified APN), for providing the provisioning signal (38) or the management session signal 
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(38a) to the terminal (10) to perform said configuring (page 5, paragraphs 83-90; page 6, 
paragraph 106; page 9, paragraph 149) and for enabling after said configuring a connection of 
said terminal (10) to an IP backbone network via the network (16) (page 6, paragraph 108). 

9. Kalke did not specifically teach provisioning in a secure way based on a chain of trust. 
Martin, JR. taught a similar invention for provisioning in a trusted (i.e. "secure") environment 
based on a chain of trust (page 2, paragraphs 18-20). 

10. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke and Martin, JR. because Martin, JR.'s 
teaching of provisioning in a trusted environment would increase the security in Kalke' s system 
by providing the ability to control provisioning to mobile devices to prevent unauthorized 
provisioning (page 1, paragraph 3). 

11. As per claim 34, Kalke taught the invention substantially as claimed for a terminal (122, 
fig. 1), enabled for handling data-protocol services or being dynamically configured by a 
network (16) for said data-protocol services specific to a service provider (page 4, paragraph 60), 
comprising: 

means for sending an access signal (30, 30a) to the network (16) (page 5, paragraph 84); 
means for forwarding said access signal (30, 30a) to a trusted access point node (20, 20a) 
optionally identified to the terminal (10) by a trusted home location register (HLR) (18, 18a) 
(page 5, paragraph 84; page 9, paragraph 149); means for forwarding said access signal (30, 30a) 
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to a trusted domain name service (DNS) server (22, 22a) identified to the terminal (10) by said 
trusted access point node (20, 20a) (page 5, paragraphs 86 and 90); and means for forwarding 
said access signal (30, 30a) to a help-portal server (24, 24a) using an address mapping for said 
help-portal server (24, 24a) identified to the terminal (10) by said trusted domain name service 
(DNS) server (22, 22a) (page 5, paragraphs 79-80, 86, 90, 95). 

12. Kalke did not specifically teach provisioning in a secure way based on a chain of trust. 
Martin, JR. taught a similar invention for provisioning in a trusted (i.e. "secure") environment 
based on a chain of trust (page 2, paragraphs 18-20). 

13. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke and Martin, JR. because Martin, JR. 5 s 
teaching of provisioning in a trusted environment would increase the security in Kalke' s system 
by providing the ability to control provisioning to mobile devices to prevent unauthorized 
provisioning (page 1, paragraph 3). 

14. As per claims 2 and 21, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 1 and 19 above. Kalke further taught wherein said data-protocol services 
specific to said service provider are provided by a general packet radio service (page 9, 
paragraph 149). 
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15. As per claim 3, Kalke and Martin, JR. taught the invention substantially as claimed in 
claim 1 above. Kalke further taught wherein the access-request signal (30, 30a) is sent by a 
browser user agent block (12) of the terminal (10) (page 4, paragraphs 61-62). 

16. As per claims 4 and 20, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 1 and 19 above. Kalke further taught wherein the well-known uniform 
resource locator (URL) is allowed by an access control profile of the terminal (10) (page 6, 
paragraph 106). 

17. As per claim 5, Kalke and Martin, JR. taught the invention substantially as claimed in 
claim 1 above. Kalke further taught comprising sending (58, 58a) the provisioning signal (38) or 
the management session signal (38a) to the terminal (10) for configuring the terminal (10) (page 
4, paragraph 70). 

18. As per claims 6 and 30, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 5 and 19 above. Kalke further taught wherein the provisioning signal (38) is 
sent over an IP bearer or sent using a short message service (SMS) protocol (fig. 12) (i.e. WAP 
gateway 1244 connected to the portal 252 as IP bearer). 

19. As per claims 7 and 3 1, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 6 and 30 above. Kalke further taught wherein said provisioning signal (38) is 
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sent over the IP bearer using a hypertext transfer protocol (HTTP) or a hypertext transfer 
protocol secure (HTTPS) (page 4, paragraph 62). 

20. As per claims 8 and 32, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 5 and 30 above. Kalke further taught wherein said provisioning signal (38) is 
sent over the air (OTA) (page 6, paragraph 1 10). 

21 . As per claims 9 and 23, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 1 and 19 above. Kalke further taught comprising the steps of: 

identifying (46, 46a) to the terminal (10) the trusted access point node name by a trusted 
home location register (HLR) (18, 18a) of the network (16) (page 6, paragraph 106); 

forwarding (47, 47a) the access-request signal (30, 30a) to the trusted access point node 
(20, 20a) by the terminal (10) (page 5, paragraph 84; page 9, paragraph 149); 

identifying (48, 48a) to the terminal (10) a trusted domain name service server (22) of 
the network (16) by the trusted access point node (20, 20a) (page 5, paragraph 84; page 9, 
paragraph 149); 

forwarding (50, 50a) said access-request signal (30, 30a) by the terminal (10) to the 
trusted domain name service (DNS) server (22, 22a) for identifying an address mapping for the 
help-portal server (24, 24a) (page 5, paragraphs 86 and 90); and 

identifying (51,51 a) said address mapping to the terminal (10) by the trusted domain 
name service server (22, 22a) (page 5, paragraph 89). 
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22. As per claims 10 and 24, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 9 and 23 above. Kalke further taught wherein a security of configuring the 
terminal (10) is ensured by means of the chain of trust built by the trusted home location register 
(18, 18a) (1 132, fig. 1 1), by the well-known access point node name for accessing the trusted 
access point node (20) (page 5, paragraph 87), by the trusted access point node (20, 20a) (page 5, 
paragraph 86) (i.e. GGSN that handles the specific APN), by the trusted domain name service 
server (22, 22a) (1024, fig. 10) and by the well-known uniform resource locator (page 5, 
paragraphs 85-86) (Note that it is inherent that DNS query must included a URL in order for the 
DNS to retrieve a list of IP addresses). 

23. As per claim 1 1, Kalke and Martin, JR. taught the invention substantially as claimed in 
claim 1 above. Kalke further taught wherein after the step of forwarding (52, 52a) the access- 
request signal (30, 30a) to the help-portal server (24, 24a), the method further comprises the 
steps of: sending (52, 52a) a user authentication request signal (32a, 32b) to an authentication 
block (26) of the network (16) or to the terminal (10) or to both, the authentication block (26) 
and the terminal (10), respectively, by the help-portal server (24, 24a), and a receiving 
authentication confirmation signal (34a or 34b) back from the authentication block (26) or from 
the terminal (10), respectively, or from both, the authentication block (26) and the terminal (10) 
(page 14, paragraphs 226 and 228); and 

determining if the terminal (10) is authentic by the help-portal server (24, 24a) based on 
the authentication confirmation signals (34a or 34b) (page 14, paragraph 227). 
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24. As per claims 12 and 25, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 1 1 and 23 above. Kalke further taught wherein said access-request signal (30) 
contains user identification information (e.g. MSISDN), a generic uniform resource locator 
(URL) request for the help-portal server (24) (page 5, paragraphs 85-86) (Note that it is inherent 
that DNS query must included a URL in order for the DNS to retrieve a list of IP addresses), and 
a well-known access point node (APN) name for accessing the trusted access point node (20) or 
a wildcard access point node (APN) (page 5, paragraph 87). 

25. As per claims 13 and 26, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 12 and 25 above. Kalke further taught comprises the steps of: 

sending (56) a triggering signal (36) (e.g. request) to a provisioning server (28) by the 
help-portal server (24) (page 4, paragraph 66; fig. 8); and (Since the wireless device access the 
provisioning server 852 via portal server, thus the request must be forward to the provisioning 
server by the portal server) 

sending (58) a provisioning signal (38) by the provisioning server (28) to the terminal 
(10) and so configuring said terminal (10) (page 4, paragraph 70). 

26. As per claims 14 and 27, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 1 1 and 23 above. Kalke further taught wherein said access-request signal 
(30a) contains user identification information (e.g. MSISDN), a generic uniform resource locator 
(URL) request for the help-portal server (24a) (page 5, paragraphs 85-86) (Note that it is inherent 
that DNS query must included a URL in order for the DNS to retrieve a list of IP addresses) and 
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for a device management server (28a) (e.g. PDP address), a well-known access point node name 
for accessing the trusted access point node (20a) or a wildcard access point node (APN) (e.g. 
APN) (page 5, paragraph 87). 

27. As per claim 28, Kalke and Martin, JR. taught the invention substantially as claimed in 
claim 27 above. Kalke further taught wherein the network (16) further comprises: a device 
management server (28a) (242, fig. 2), responsive to the access-request signal (30a) (PDP 
Context Request) and to a further access-request signal (37) (subsequent PDP Context Request) 
containing a network access authentication (i.e. responsive to PDP Context Request containing 
MSISDN), for providing the management session signal (38a) to the terminal (10) for 
configuring the terminal (10) (page 4, paragraphs 69-70). 

28. As per claims 15 and 29, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 14 and 28 above. Kalke and Martin, JR. further taught comprising the steps 
of: 

sending an initial provisioning triggering signal (27) to a device management server (28a) 
for initial provisioning (see Kalke, page 4, paragraphs 65-66); and 

sending a further triggering signal (33) by the help-portal server (24a) to an initialization 
content handler (15) of the terminal (10), said further triggering signal (33) containing a proxy 
address for connecting to the device management server (see Martin, JR., page 3-4, paragraphs 
29-30). 
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29. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke and Martin, JR. for the same reason set 
forth in claim 1 above. 

30. Kalke and Martin, JR. did not teach containing a password in the triggering signal. It 
would have been obvious to one having ordinary skill in the art at the time of the invention was 
made to include a password in a triggering signal (e.g. request) in order for a terminal to access 
to a server because by doing so it would avoid unauthorized terminal accessing to a sensitive 
data in the server, thus increase the security of a system. 

31. As per claim 16, Kalke and Martin, JR. taught the invention substantially as claimed in 
claim 15 above. Martin, JR. farther taught comprising the step of: determining (64) if the further 
triggering signal (33) contains an instruction of making a connection (i.e. for establishing a 
provisioning session) to the device management server (28a) by the terminal (10) (page 3, 
paragraph 29). 

32. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke and Martin, JR. because Martin, JR.'s 
teaching of determining if a triggering signal contains an instruction of making a connection to 
the device management server would increase the efficiency of Kalke' s system by allowing a 
terminal to receive provisioning directive remotely from a device management server. 
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33. As per claim 17, Kalke and Martin, JR. taught the invention substantially as claimed in 
claim 16 above. Martin, JR. further taught comprises the steps of: 

sending (68) a start signal (35) (i.e. forwarding the SMS provisioning message as a start 
signal) to a device management agent block (17) of the terminal (10) by the initialization content 
handler block (15) (page 4, paragraph 30); 

sending (70) a further access-request signal (37) containing a network access 
authentication to the device development server (28a) by the device management agent block 
(17) (page 4, paragraphs 30-31); and 

sending (58a) the management session signal (38a) by the device development server 
(28a) to the terminal (10) for further configuring the terminal (10) (page 4, paragraph 31). 

34. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke and Martin, JR. because Martin, JR.'s 
teaching of sending signal for further configuring the terminal would increase the efficiency of 
Kalke 5 s system by allowing a terminal to receive provisioning directive remotely from a device 
management server. 

35. As per claims 18 and 22, Kalke and Martin, JR. taught the invention substantially as 
claimed in claims 1 and 19 above. Kalke further taught comprises the step of: starting a browser 
user agent (12) by a starting signal (3 1) from a user (14) (page 8, paragraph 139). (Note that 
Kalke taught activate a device with user interface (i.e. browser user agent), thus it is inherent that 
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a user must present a starting signal to start the user interface (e.g. clicking on an interface icon). 

36. Applicant's arguments with respect to claims 1-34, filed 1 1/23/05, have been fully 
considered but are not deemed to be persuasive. 

37. In the remark applicant argued that 

(1) the present invention claimed in claim 33 is a statutory subject 
matter. 

(2) the terminal first sends an access-request signal to the network and 
then the terminal forwards the signal sequentially is not indefinite. 

(3) the term "optionally" is not indefinite. 

(4) Kalke fails to teach that the network is provided by the service 
provider. 

(5) the cited references fail to teach that a well-known (generic) 
uniform resource locator (URL) was used to forwarding the access-request 
signal to the help-portal server by the terminal. 

(6) the cited references fail to teach providing a chain of trust. 

(7) there is no suggested motivation to combine Kalke and Martin, JR. 
et al. 

(8) Kalke did not teach the browser as claimed in claim 3. 

(9) Kalke did not teach authenticating the user by sending signals 34a 
and 34b and possible using authentication block. 
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(10) none of the references teach sending two signals: an initial 
provisioning triggering signal and a further triggering signal as claimed in 
claims 15 and 29. 

38. In response to point(l), please be advised that the "Interim Guidelines for Examination 
of Patent Applications for Subject Matter Eligibility" was signed on Oct 26 and posted on the 
uspto.gov website. The link is: 

http://www.uspto.gov/web/offices/pac/dapp/ogsheet.htrnl , 
and please note that these interim guidelines supercede those in MPEP 2106. Thus the interim 
guidelines should be turned to and followed for instances where you previously turned to MPEP 
2106. Specifically, ANNEX IV of the interim guidelines states: "Since a computer program is 
merely a set of instructions capable of being executed by a computer, the computer program 
itself is not a process and USPTO personnel should treat a claim for a computer program, 
without the computer-readable medium needed to realize the computer program's functionality, 
as nonstatutory functional descriptive material." 

39. In page 24, lines 26-29 of applicant's specification described a computer-readable 
storage structure as software. This means that a computer-readable storage structure could be a 
computer program. Data structures, software, and computer program products that lack storage 
on a suitable computer-readable medium are not able to realize any functionality and are thus not 
statutory. Accordingly, the rejection is maintained. Applicant is suggested to amend claim 33 as 
"a computer-readable storage". 
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40. In response to point (2), it is still unclear why the terminal forward the access-request 
when the access-request is already sent by the terminal (i.e., are they the same step). As 
explained in the cited portion of the specification by the applicant in page 3 of the remark, the 
terminal gets the address of the trusted DNS server from the trusted APN prior to the forwarding 
of the access-request. Since this essential step is missing from the claim, it is unclear why the 
terminal will forward the same access-request again when the access-request is already sent. 
Accordingly, the rejection is maintained. 

41 . In response to point (3), argument regarding the term "optionally" was persuasive and the 
rejection is withdrawn. 

42. In response to point (4), Kalke taught service provider controls the provisioning server 
(page 7, paragraph 14), which is part of the network according to applicant's specification (fig. 
1). Therefore, Kalke taught the network (comprising the provisioning server) is provided by the 
service provider. 

43. In response to point (5), Kalke taught sending a DNS query on self Activation APN (page 
5, paragraph 85), and DNS responds with a list of IP addresses for GGSN's that handle the 
specified APN (page 5, paragraph 86). This means that the DNS query must include URL of the 
host in order for the DNS to lookup corresponding IP addresses. Thus, Kalke taught 
forwarding using a well-known uniform resource locator (URL). In response to applicant's 
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argument that the references fail to show certain features of applicant's invention, it is noted that 
the features upon which applicant relies (i.e., Kalke taught IP addresses of the GGSN and not the 
EP address of the help-portal server as in the present invention) are not recited in the rejected 
claim(s). Although the claims are interpreted in light of the specification, limitations from the 
specification are not read into the claims. See In re Van Geuns, 988 F.2d 1 181, 26 
USPQ2d 1057 (Fed. Cir. 1993). 

44. In response to point (6), Martin, JR. et al taught providing a chain of trust between trusted 
provisioning domains (TPDs) (page 2, paragraphs 18-20). Martin, JR. et al further taught 
principle of a trusted ("secure") environment may be extended to allow successive delegation of 
provisioning authority down a delegation "chain" containing essentially any number of 
secondary TPDs (page 2, paragraph 20). In response to applicant's argument that the term 
"chain" which implies propagating the trust sequentially from one network element to another 
multiple times, it is noted that the claim does not define "chain of trust" as propagation from one 
network element to another multiple times (i.e., more than two element in a chain). Although the 
claims are interpreted in light of the specification, limitations from the specification are not read 
into the claims. See In re Van Geuns, 988 F.2d 1 181, 26 USPQ2d 1057 (Fed. Cir. 1993). 

45. In response to point (7), as cited in the office action mailed on September 20, 2005, it 
would have been obvious to one having ordinary skill in the art at the time of the invention was 
made to combine the teachings of Kalke and Martin, JR. because Martin, JR.'s teaching of 
provisioning in a trusted environment would increase the security in Kalke' s system by 
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providing the ability to control provisioning to mobile devices to prevent unauthorized 
provisioning (page 1, paragraph 3). 

46. In response to point (8), applicant's argument that the references fail to show certain 
features of applicant's invention, it is noted that the features upon which applicant relies (i.e., a 
terminal as a mobile wireless device) are not recited in the rejected claim(s). Although the 
claims are interpreted in light of the specification, limitations from the specification are not read 
into the claims. See In re Van Geuns, 988 F.2d 1 181, 26 USPQ2d 1057 (Fed. Cir. 1993). Even 
if the claim recites a terminal as a mobile wireless device, Kalke taught a wireless terminal 
device that can conduct web browsing (page 5, paragraph 80). This means the wireless terminal 
device must include a browser system. 

47. In response to point (9), Kalke taught authenticating the user by receiving user ID, 
passwords, confirmation of password, etc. (i.e. authentication signals). This means that signals 
must be sent in order for a device to receive user ID and password to authenticate a user. 
Furthermore, in response to applicant's argument that the references fail to show certain features 
of applicant's invention, it is noted that the features upon which applicant relies (i.e., signals 34a 
and 34b) are not recited in the rejected claim 1 1 . Although the claims are interpreted in light of 
the specification, limitations from the specification are not read into the claims. See In re Van 
Geuns, 988 F.2d 1 181, 26 USPQ2d 1057 (Fed. Cir. 1993). 
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48. In response to point (10), although, Kalke taught sending an initial provisioning 
triggering signal (i.e., request for provisioning) and a further triggering signal (i.e., directives) 
(page 4, paragraphs 65-68 and 70), however, Kalke did not teach the further triggering signal for 
connecting to the device management server. Martin, JR. et al taught a further triggering signal 
containing proxy address for connecting to the device management server (pages 3-4, paragraphs 
29-30). 

49. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to combine the teachings of Kalke and Martin, JR. because Martin, JR.'s 
teaching of provisioning in a trusted environment would increase the security in Kalke' s system 
by providing the ability to control provisioning to mobile devices to prevent unauthorized 
provisioning (page 1, paragraph 3). 

50. Kalke and Martin, JR. did not teach containing a password in the further triggering 
signal. It would have been obvious to one having ordinary skill in the art at the time of the 
invention was made to include a password in a triggering signal (e.g. request) in order for a 
terminal to access to a server because by doing so it would avoid unauthorized terminal 
accessing to a sensitive data in the server, thus increase the security of a system. 
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5 1 . THIS ACTION IS MADE FINAL. Applicant is reminded of the extension of time 
policy as set forth in 37 CFR 1. 136(a). 

52. A shortened statutory period for reply to this final action is set to expire THREE 
MONTHS from the mailing date of this action. In the event a first reply is filed within TWO 
MONTHS of the mailing date of this final action and the advisory action is not mailed until after 
the end of the THREE MONTH shortened statutory period, then the shortened statutory period 
will expire on the date the advisory action is mailed, and any extension fee pursuant to 37 CFR 

1 . 1 36(a) will be calculated from the mailing date of the advisory action. In no event, however, 
will the statutory period for reply expire later than SIX MONTHS from the mailing date of this 
final action. Any inquiry concerning this communication or earlier communications form the 
examiner should be directed to Philip Lee whose telephone number is (571) 272-3967. Any 
inquiry of a general nature or relating to the status of this application should be directed to the 
Group receptionist whose telephone number is (703) 305-9600. 

Philip Lee 
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